Information Security: Software Change Controls at the Department of Energy

AIMD-00-189R Published: Jun 30, 2000. Publicly Released: Jun 30, 2000.

Highlights

Pursuant to a congressional request, GAO reviewed software change controls at the Department of Energy (DOE), focusing on: (1) whether key controls as described in agency policies and procedures regarding software change authorization, testing, and approval complied with federal guidance; and (2) the extent to which agencies contracted for year 2000 remediation of mission-critical systems and involved foreign nationals in these efforts.

Full Report

Full Report (6 pages)

Office of Public Affairs

Chuck Young

Managing Director

youngc1@gao.gov

(202) 512-4800

Topics

Information Security

Computer securityComputer software contractsContract oversightContractor personnelSecurity policiesEmployment of foreign nationalsInformation resources managementInternal controlsMission critical systemsSoftware verification and validationY2K